b"                       National Archives and Records Administration\n                                                                                                 8601 Adelphi Road\n                                                                                College Park, Maryland 20740-6001\n\n\nDate \t      January 16,2009\nRepJyto\nAttn of \t   Office oflnspector General (OIG)\n\nSubject \t   Advisory Report No. 09-07, Omission of Classified Electronic Records From the Executive\n            Office 'of the President System\n\nTo \t        Adrienne Thomas, Acting Archivist of the United States (N)\n\n            The purpose of this report is to advise you of the current status of the handling of classified\n            electronic records from the George W. Bush administration by the Executive Office ofthe\n            President (EOP) System of the Electronic Records Archive (ERA)1. We continue in our on\xc2\xad\n            going effort to review the National Archives and Records Administration's (NARA)\n            development and implementation of the ERA system. This initiative focuses on assessing the\n            current status ofthe ERA program and determining whether the program (1) is meeting cost\n            and schedule requirements, and (2) will be able to cost effectively meet future target\n            implementation dates.\n\n            During the course of our review, NARA removed classified records from the scope ofthe\n            requirements for the EOP System. Therefore, classified records from the George W. Bush\n            administration are not going to be included in the EOP System. In our opinion, this will\n            negatively affect the cost and implementation schedule of the ERA project. ERA was to\n            enhance NARA's ability to comply with the requirements ofthe Presidential Records Act2 by\n            providing rapid ingestion of data in a permanent, secure environment and eliminating the\n            need to migrate the data to new or updated systems in the future. Excluding classified\n            records from the EOP System raises the following concerns:\n\n               \xe2\x80\xa2 \t What are the associated costs to maintain classified electronic records in a non-ERA\n                   system?\n               \xe2\x80\xa2 \t What are the additional costs needed to develop and implement an EOP National\n                   Security System (NSS)3 in the future to handle classified records?\n               \xe2\x80\xa2 \t How will the cost and schedule ofthe overall ERA development effort be impacted?\n\n\n\n\n1 The portion of ERA that will handle electronic records from the Executive Office of the President. \n\n2 The Presidential Records Act of 1978, 44 U.S.C. 2201-2207 governs the official records of Presidents and Vice \n\nPresidents created or received after January 20, 1981. \n\n3 National Security Systems (NSS)-intelligence systems, cryptologic activities related to national security, milltary \n\ncommand and control systems, and equipment that is an integral part of a weapon or weapons system, or is critical to the \n\ndirect fulfillment of military or intelligence mission. \n\n\x0c        NARA officials stated the reasons for not including classified records in the EOP System was\n                                                                                             4\n        the lack of funding and the additional level of effort needed to certify and accredit a system\n        with classified records.\n\n        NARA's July 2008 ERA Program Monthly Report to Congress noted that work was being\n        deferred on the NSS portion of the ERA EOP and the NSS portion will be developed as part\n        of a future increment. The report also stated NSS functionality will be provided by\n        replicating or migrating the existing White House classified systems to NARA, as was done\n        with the Clinton records. However, the report fails to note the reasons for deferring the NSS;\n        the costs for replicating or migrating, and maintaining the White House classified systems;\n        and the costs and time frame for developing and implementing the NSS in ERA.\n\n         Our review effort consisted primarily of reviewing applicable ERAlEOP documentation such\n         as: the ERA contract and modifications; contractor status reports; Congressional status\n         reports; EOP test plans and implementation schedules; ERA's Exhibit 3005 ; Congressional\n         Budget Justifications; and interviews with responsible ERA Program Office and Presidential\n         library officials. We conducted this performance audit in accordance with generally accepted\n         government aUditing standards. Those standards require that we plan and perform the audit\n         to obtain sufficient, appropriate evidence to provide a reasonable basis for our findings and\n         conclusions based on our audit objectives. We believe that the evidence obtained provides a\n         reasonable basis for our findings and conclusions based on our audit objectives.\n\n         The Presidential Records Act gives the Archivist of the United States responsibility for the\n         custody, control, and preservation of presidential records upon the conclusion of a\n         President's term of office. The act states that the Archivist has an affirmative duty to make\n         such records available to the public as rapidly and completely as possible consistent with the\n         provisions ofthe act. At the time of the last presidential transition, NARA met these\n         requirements by recreating the Clinton administration's computer systems (software and\n         hardware) that originally held the records and developing simple search interfaces so that\n         NARA personnel could search for requested information. It took about 400 days to process\n         the 2 terabytes 6 of data from the Clinton Administration. The current estimate of classified\n         electronic records from the Bush administration is between 2 and 2.5 terabytes which is equal\n         to or greater than the total of all electronic records received from the Clinton administration.\n         Any records that cannot get ingested in a way that supports search and retrieval immediately\n         after the change in administration could substantially effect the time and cost for NARA to\n         comply with the Presidential Records Act.\n\n         The Exhibit 300: Capital Asset Plan and Business Case Summary for ERA states that NARA\n         must have the capability to deal with the increasing volume and complexity ofthe Bush\n         administration's electronic records. NARA will immediately need the ability to respond to\n\n4 Security certification is an assessment of the management, operational, and technical security controls in an information\nsystem to determine the extent to which the controls are implemented correctly, operating as intended, and producing the\ndesired outcome. Security accreditation is the official management decision given by a senior agency official to\nauthorize operation of an information system and to explicitly accept the risk to agency operations, agency assets, or\nindividuals based on the implementation of an agreed-upon set of security controls.\n5 Agencies develop an Exhibit 300 to justify each request for a major information technology investment.\n6 A terabyte is about 1 trillion bytes or about 1,000 gigabytes.\n\n\n\n\n                                                            2\n                                     National Archives and Records Administration\n\x0ctime sensitive and often high visibility special access requests for these records. Such special \n\naccess requests come from former and incumbent Presidents, the Courts, and Congress. \n\nNARA must ensure the right technologies and procedures are in place to accept, \n\nappropriately process and preserve some of America's most historically significant, and often \n\nhighly classified electronic records from the Bush Presidency. \n\n\nAt the end of previous administrations, NARA acquired electronic records on an ad hoc \n\nbasis, essentially migrating systems as is to NARA using the same technology used in the \n\nWhite House whenever possible. This methodology has several disadvantages: \n\n\n      \xe2\x80\xa2\t\n\n\n      \xe2\x80\xa2\t\n\n\n\n      \xe2\x80\xa2\t\n\n\n\n\nThe Exhibit 300 also described the benefits of using ERA to ingest the electronic records of\nthe current Bush administration including:\n\n      \xe2\x80\xa2\t\n\n\n      \xe2\x80\xa2\t\n\n\n\n      \xe2\x80\xa2\t\n\x0cadditional level of effort needed to certify and accredit a system with classified records. The\nERA Program Office has not responded to inquiries related to the funding issue. When asked\nhow the classified electronic records, that will inevitably come to NARA from the White\nHouse, would be handled a NARA official told us the majority ofthese records would be\ntransferred to NARA on USB drives and a standalone server. It is intended that the data will\nbe in a neutral format and will be searchable using included software, which NARA will\nhave to license. She added the certification of a stand alone system, such as the one created\nfor Clinton's records, was deemed to be a more straightforward and timely process than the\ncertification of a classified EOP System.\n\nBy excluding classified records from the scope of the EOP System, we are concerned with\nthe associated costs to maintain classified electronic records in a non-ERA system, the\nadditional costs needed to develop and implement an EOP NSS, and the impact to the cost\nand schedule of the overall ERA development effort.\n\nIf you have any questions concerning the information presented in this status report, please e\xc2\xad\nmail Mr. James Springs or me, or call us at extension 73000.\n\n\n\n\nparus2vP\nInspector General\n\n\ncc: NH (M. Morphy)\n\n\n\n\n                                             4\n                        National Archives and Records Administration\n\x0c"